Warning: Permanently added '[localhost]:4783' (ECDSA) to the list of known hosts.
2023/05/17 22:49:49 fuzzer started
2023/05/17 22:49:50 dialing manager at localhost:44319
2023/05/17 22:49:50 checking machine...
2023/05/17 22:49:50 checking revisions...
syzkaller login: [   45.832615] kmemleak: Automatic memory scanning thread ended
2023/05/17 22:49:50 testing simple program...
[   45.896642] cgroup: Unknown subsys name 'net'
[   45.974681] cgroup: Unknown subsys name 'rlimit'
executing program
executing program
executing program
executing program
[   58.060591] audit: type=1400 audit(1684363802.610:6): avc:  denied  { execmem } for  pid=257 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[   59.192142] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   59.197911] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   59.199746] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   59.203307] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   59.205546] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   59.206855] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   59.600868] ------------[ cut here ]------------
[   59.601569] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[   59.603201] WARNING: CPU: 0 PID: 258 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   59.604283] Modules linked in:
[   59.604703] CPU: 0 PID: 258 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   59.606600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   59.610378] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   59.611025] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   59.613207] RSP: 0018:ffff888017c5fc00 EFLAGS: 00010282
[   59.613877] RAX: 0000000000000000 RBX: ffff88800e539440 RCX: 0000000000000000
[   59.614770] RDX: ffff888016adb680 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   59.615677] RBP: ffff88800e539454 R08: 0000000000000001 R09: 0000000000000000
[   59.616570] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   59.617496] R13: ffffffff84e23fe0 R14: ffff88800e539448 R15: ffffffff84d74dc0
[   59.618393] FS:  000055555665b400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   59.619402] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.620126] CR2: 00007f671e0456f4 CR3: 000000000e490000 CR4: 0000000000350ef0
[   59.621022] Call Trace:
[   59.621382]  <TASK>
[   59.621688]  ? __pfx_ipv4_frags_init_net+0x10/0x10
[   59.622338]  ipv4_frags_init_net+0x269/0x440
[   59.622902]  ops_init+0xbb/0x6b0
[   59.623391]  setup_net+0x3d9/0x990
[   59.623848]  ? down_read_killable+0x1d7/0x4e0
[   59.624454]  ? __pfx_setup_net+0x10/0x10
[   59.624964]  ? copy_net_ns+0x17c/0x770
[   59.625534]  copy_net_ns+0x321/0x770
[   59.626024]  create_new_namespaces+0x3f6/0xb30
[   59.626648]  unshare_nsproxy_namespaces+0xc1/0x200
[   59.627295]  ksys_unshare+0x44d/0x8e0
[   59.627787]  ? __pfx_ksys_unshare+0x10/0x10
[   59.628361]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   59.629074]  __x64_sys_unshare+0x31/0x40
[   59.629636]  do_syscall_64+0x3f/0x90
[   59.630112]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   59.630786] RIP: 0033:0x7f7d80e7a0d7
[   59.631286] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   59.633493] RSP: 002b:00007fffc26692e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   59.634436] RAX: ffffffffffffffda RBX: 00007fffc2669928 RCX: 00007f7d80e7a0d7
[   59.635328] RDX: 00007f7d80ee441f RSI: 00007fffc2669280 RDI: 0000000040000000
[   59.636217] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007fffc2669090
[   59.637076] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f7d80f8cbf0
[   59.637973] R13: 00007fffc26693c0 R14: 0000000000000000 R15: 00000000000000f8
[   59.638889]  </TASK>
[   59.639223] irq event stamp: 11097
[   59.639657] hardirqs last  enabled at (11107): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   59.640725] hardirqs last disabled at (11118): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   59.641833] softirqs last  enabled at (10648): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   59.642878] softirqs last disabled at (10643): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   59.643916] ---[ end trace 0000000000000000 ]---
[   59.649104] ------------[ cut here ]------------
[   59.649745] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[   59.651439] WARNING: CPU: 0 PID: 258 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   59.652514] Modules linked in:
[   59.652918] CPU: 0 PID: 258 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   59.654090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   59.655110] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   59.655785] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   59.657987] RSP: 0018:ffff888017c5fc00 EFLAGS: 00010282
[   59.658683] RAX: 0000000000000000 RBX: ffff88800c6fc440 RCX: 0000000000000000
[   59.659575] RDX: ffff888016adb680 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   59.660466] RBP: ffff88800c6fc454 R08: 0000000000000001 R09: 0000000000000000
[   59.661350] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   59.662257] R13: ffffffff84e23fe0 R14: ffff88800c6fc448 R15: ffffffff84da7d60
[   59.663123] FS:  000055555665b400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   59.664140] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.664877] CR2: 00007f671e0456f4 CR3: 000000000e490000 CR4: 0000000000350ef0
[   59.665808] Call Trace:
[   59.666137]  <TASK>
[   59.666466]  ? __pfx_ipv6_frags_init_net+0x10/0x10
[   59.667090]  ipv6_frags_init_net+0x206/0x3c0
[   59.667685]  ops_init+0xbb/0x6b0
[   59.668131]  setup_net+0x3d9/0x990
[   59.668632]  ? down_read_killable+0x1d7/0x4e0
[   59.669237]  ? __pfx_setup_net+0x10/0x10
[   59.669763]  ? copy_net_ns+0x17c/0x770
[   59.670314]  copy_net_ns+0x321/0x770
[   59.670807]  create_new_namespaces+0x3f6/0xb30
[   59.671430]  unshare_nsproxy_namespaces+0xc1/0x200
[   59.672052]  ksys_unshare+0x44d/0x8e0
[   59.672572]  ? __pfx_ksys_unshare+0x10/0x10
[   59.673120]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   59.673893]  __x64_sys_unshare+0x31/0x40
[   59.674451]  do_syscall_64+0x3f/0x90
[   59.674926]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   59.675597] RIP: 0033:0x7f7d80e7a0d7
[   59.676073] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   59.678270] RSP: 002b:00007fffc26692e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   59.679229] RAX: ffffffffffffffda RBX: 00007fffc2669928 RCX: 00007f7d80e7a0d7
[   59.680081] RDX: 00007f7d80ee441f RSI: 00007fffc2669280 RDI: 0000000040000000
[   59.680975] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007fffc2669090
[   59.681893] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f7d80f8cbf0
[   59.682786] R13: 00007fffc26693c0 R14: 0000000000000000 R15: 00000000000000f8
[   59.683703]  </TASK>
[   59.684022] irq event stamp: 12907
[   59.684508] hardirqs last  enabled at (12919): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   59.685650] hardirqs last disabled at (12930): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   59.686769] softirqs last  enabled at (12760): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   59.687853] softirqs last disabled at (12755): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   59.688955] ---[ end trace 0000000000000000 ]---
[   59.690368] ------------[ cut here ]------------
[   59.690971] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[   59.692898] WARNING: CPU: 0 PID: 258 at net/sysctl_net.c:155 register_net_sysctl+0x1e6/0x2c0
[   59.694017] Modules linked in:
[   59.694479] CPU: 0 PID: 258 Comm: syz-executor.0 Tainted: G        W          6.4.0-rc2-next-20230517 #1
[   59.695673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   59.696752] RIP: 0010:register_net_sysctl+0x1e6/0x2c0
[   59.697485] Code: 89 d8 4c 8b 43 08 48 c1 e8 03 42 80 3c 20 00 0f 85 af 00 00 00 48 8b 13 4c 89 e9 4c 89 fe 48 c7 c7 60 40 e2 84 e8 fa ff d4 fc <0f> 0b 48 89 e8 48 c1 e8 03 42 0f b6 14 20 48 89 e8 83 e0 07 83 c0
[   59.699768] RSP: 0018:ffff888017c5fbf0 EFLAGS: 00010286
[   59.700495] RAX: 0000000000000000 RBX: ffff88800c6fda40 RCX: 0000000000000000
[   59.701456] RDX: ffff888016adb680 RSI: ffffffff81171ad2 RDI: 0000000000000001
[   59.702414] RBP: ffff88800c6fda54 R08: 0000000000000001 R09: 0000000000000000
[   59.703369] R10: 0000000000000000 R11: 0000000000000001 R12: dffffc0000000000
[   59.704308] R13: ffffffff84e23fe0 R14: ffff88800c6fda48 R15: ffffffff84db0aa0
[   59.705260] FS:  000055555665b400(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[   59.706353] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.707098] CR2: 00007f671e0456f4 CR3: 000000000e490000 CR4: 0000000000350ef0
[   59.708044] Call Trace:
[   59.708426]  <TASK>
[   59.708742]  nf_ct_net_init+0x224/0x3d0
[   59.709322]  ? __pfx_nf_ct_net_init+0x10/0x10
[   59.709939]  ops_init+0xbb/0x6b0
[   59.710438]  setup_net+0x3d9/0x990
[   59.710927]  ? down_read_killable+0x1d7/0x4e0
[   59.711565]  ? __pfx_setup_net+0x10/0x10
[   59.712107]  ? copy_net_ns+0x17c/0x770
[   59.712675]  copy_net_ns+0x321/0x770
[   59.713217]  create_new_namespaces+0x3f6/0xb30
[   59.713838]  unshare_nsproxy_namespaces+0xc1/0x200
[   59.714519]  ksys_unshare+0x44d/0x8e0
[   59.715049]  ? __pfx_ksys_unshare+0x10/0x10
[   59.715667]  ? __pfx_blkcg_maybe_throttle_current+0x10/0x10
[   59.716464]  __x64_sys_unshare+0x31/0x40
[   59.717007]  do_syscall_64+0x3f/0x90
[   59.717562]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   59.718276] RIP: 0033:0x7f7d80e7a0d7
[   59.718767] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   59.721091] RSP: 002b:00007fffc26692e8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[   59.722103] RAX: ffffffffffffffda RBX: 00007fffc2669928 RCX: 00007f7d80e7a0d7
[   59.723037] RDX: 00007f7d80ee441f RSI: 00007fffc2669280 RDI: 0000000040000000
[   59.723973] RBP: 00000000ffffffff R08: 0000000000000000 R09: 00007fffc2669090
[   59.724921] R10: 0000000000000000 R11: 0000000000000206 R12: 00007f7d80f8cbf0
[   59.725877] R13: 00007fffc26693c0 R14: 0000000000000000 R15: 00000000000000f8
[   59.726849]  </TASK>
[   59.727167] irq event stamp: 13703
[   59.727659] hardirqs last  enabled at (13715): [<ffffffff812fcb28>] __up_console_sem+0x78/0x80
[   59.728784] hardirqs last disabled at (13726): [<ffffffff812fcb0d>] __up_console_sem+0x5d/0x80
[   59.729941] softirqs last  enabled at (12972): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   59.731052] softirqs last disabled at (12963): [<ffffffff8118d993>] irq_exit_rcu+0x93/0xc0
[   59.732145] ---[ end trace 0000000000000000 ]---
executing program
[   61.274127] Bluetooth: hci0: command 0x0409 tx timeout
[   63.320247] Bluetooth: hci0: command 0x041b tx timeout
executing program
[   65.368253] Bluetooth: hci0: command 0x040f tx timeout
executing program
[   67.416327] Bluetooth: hci0: command 0x0419 tx timeout

VM DIAGNOSIS:
22:49:54  Registers:
info registers vcpu 0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff82507ef0 RDI=ffffffff87f2dc00 RBP=ffffffff87f2dbc0 RSP=ffff888017c5f620
R8 =0000000000000001 R9 =ffffed1002f8beb5 R10=0000000000000003 R11=0000000000000001
R12=000000000000005f R13=ffffffff87f2dbc0 R14=ffffffff87f2dc10 R15=ffffffff87f2de78
RIP=ffffffff82507f45 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555665b400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f671e0456f4 CR3=000000000e490000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=0000000000000000000000000000ff00 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000049d87 RBX=0000000000000001 RCX=ffffffff844d0a0e RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81287415 RBP=dffffc0000000000 RSP=ffff888008dcfe70
R8 =0000000000000001 R9 =ffffed100d9e69f8 R10=ffff88806cf34fc3 R11=0000000000000001
R12=ffffffff85d35a10 R13=1ffff110011b9fd3 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844d199f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f29ba6689f0 CR3=0000000016414000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=452b64f6a27a829d9b4c2e716d909301
XMM02=6b1e99b806172e3b00000000000aea28 XMM03=ac8bc31478ec851100000000000aefa0
XMM04=d35f14e95510c1f60000000000111370 XMM05=d3fdd5f48436fbd700000000000aead0
XMM06=4db2c5b372d46c7700000000000ae988 XMM07=a1fcdcf819d7e1e500000000000ae728
XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000
XMM10=00000000000000000020002000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000